Tag: microsoft
-
Windows NTLM vulnerability exploited in multiple attack campaigns (CVE-2025-24054)
by
in SecurityNewsCVE-2025-24054, a Windows NTLM hash disclosure vulnerability that Microsoft has issued patches for last month, has been leveraged by threat actors in campaigns targeting … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/04/17/windows-ntlm-vulnerability-exploited-in-multiple-attack-campaigns-cve-2025-24054/
-
Weaponized Amazon Gift Cards Used to Steal Microsoft Credentials
by
in SecurityNewsCybercriminals are exploiting the trust in e-gift cards and the prestige of Amazon to steal Microsoft credentials from unsuspecting employees. The attack begins with an email, disguised as a >>Reward Gateway
-
New Windows Server emergency updates fix container launch issue
by
in SecurityNewsMicrosoft has released emergency Windows Server updates to address a known issue preventing Windows containers from launching. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/new-windows-server-emergency-updates-fix-container-launch-issue/
-
Node.js Malware Campaign Targets Crypto Users with Fake Binance and TradingView Installers
Microsoft is calling attention to an ongoing malvertising campaign that makes use of Node.js to deliver malicious payloads capable of information theft and data exfiltration.The activity, first detected in October 2024, uses lures related to cryptocurrency trading to trick users into installing a rogue installer from fraudulent websites that masquerade as legitimate software like Binance…
-
Microsoft Thwarts $4bn in Fraud Attempts
by
in SecurityNewsMicrosoft has blocked fraud worth $4bn as threat actors ramp up AI use First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/microsoft-thwarts-4bn-in-fraud/
-
Code-Panne bei Microsoft: Windows-11-Upgrade trotz Blockade verteilt
by
in SecurityNewsMicrosoft Intune hat aufgrund eines Fehlers einige Upgrade-Blockaden ignoriert, so dass Systeme unerwartet auf Windows 11 aktualisiert wurden. First seen on golem.de Jump to article: www.golem.de/news/code-panne-bei-microsoft-windows-11-upgrade-trotz-blockade-verteilt-2504-195445.html
-
Microsoft bestätigt: Neue Windows-11-Updates lösen Bluescreens aus
by
in SecurityNewsWer unter Windows 11 nach den jüngsten Updates mit Bluescreens konfrontiert wird, ist damit nicht allein. Auch Microsoft hat das Problem nun erkannt. First seen on golem.de Jump to article: www.golem.de/news/microsoft-bestaetigt-neue-windows-11-updates-loesen-bluescreens-aus-2504-195440.html
-
Microsoft vulnerabilities: What’s improved, what’s at risk
by
in SecurityNewsMicrosoft reported a record 1,360 vulnerabilities in 2024, according to the latest BeyondTrust Microsoft Vulnerabilities Report. The volume marks an 11% increase from the … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/04/17/beyondtrust-microsoft-vulnerabilities-report-2024/
-
Multiple Groups Exploit NTLM Flaw in Microsoft Windows
by
in SecurityNewsThe attacks have been going on since shortly after Microsoft patched the vulnerability in March. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/multiple-group-exploiting-ntlm-flaw
-
Free Blue Screens of Death for Windows 11 24H2 users
by
in SecurityNewsMicrosoft rewards those who patch early with bricks hurled through its operating system First seen on theregister.com Jump to article: www.theregister.com/2025/04/16/microsofts_latest_windows_updates/
-
Windows NTLM Vulnerability (CVE-2025-24054) Actively Exploit in the Wild to Hack Systems
by
in SecurityNewsA critical vulnerability in Microsoft Windows, identified as CVE-2025-24054, has been actively exploited in the wild since March 19, 2025, targets organizations worldwide. The flaw, which enables NTLM hash disclosure through spoofing, allows attackers to harvest sensitive user credentials with minimal interaction, potentially leading to privilege escalation and full network compromise. Despite Microsoft releasing a…
-
Hackers Weaponize Gamma Tool Through Cloudflare Turnstile to Steal Microsoft Credentials
by
in SecurityNewsCybercriminals are exploiting an AI-powered presentation tool called Gamma to launch a multi-stage attack aimed at stealing Microsoft credentials. This attack route is designed not only to evade traditional security measures but also to deceive human recipients by leveraging trusted platforms and services. Exploitation of Gamma and Cloudflare Turnstile Cyber attackers are taking advantage of…
-
Latest Mustang Panda Arsenal: PAKLOG, CorKLOG, and SplatCloak – P2
by
in SecurityNewsThis is Part 2 of our two-part technical analysis on Mustang Panda’s new tools. For details on ToneShell and StarProxy, go to Part 1.IntroductionIn addition to the new ToneShell variants and StarProxy, Zscaler ThreatLabz discovered two new keyloggers used by Mustang Panda that we have named PAKLOG and CorKLOG as well as an EDR evasion…
-
Microsoft warns of blue screen crashes caused by April updates
by
in SecurityNewsMicrosoft warned customers this week that their systems might crash with a blue screen error caused by a secure kernel fatal error after installing Windows updates released since March. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-warns-of-blue-screen-crashes-caused-by-april-updates/
-
Gamma AI Platform Abused in Phishing Chain to Spoof Microsoft SharePoint Logins
by
in SecurityNewsThreat actors are leveraging an artificial intelligence (AI) powered presentation platform named Gamma in phishing attacks to direct unsuspecting users to spoofed Microsoft login pages.”Attackers weaponize Gamma, a relatively new AI-based presentation tool, to deliver a link to a fraudulent Microsoft SharePoint login portal,” Abnormal Security researchers Hinman Baron and Piotr Wojtyla said in First…
-
Some devices offered Windows 11 upgrades despite Intune blocks
by
in SecurityNewsMicrosoft is working to fix an ongoing issue causing some users’ Windows devices to be offered Windows 11 upgrades despite Intune policies preventing them. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-some-devices-offered-windows-11-upgrades-despite-intune-blocks/
-
Malicious Macros Return in Sophisticated Phishing Campaigns
by
in SecurityNewsThe cybersecurity landscape of 2025 is witnessing a troubling resurgence of malicious macros in phishing campaigns. Despite years of advancements in security measures and Microsoft’s decision to disable macros by default in Office applications, attackers have adapted their methods to exploit human vulnerabilities and technical loopholes. These malicious macros, embedded within seemingly legitimate documents, have…
-
Hackers Exploit Node.js to Spread Malware and Exfiltrate Data
by
in SecurityNewsThreat actors are increasingly targeting Node.js”, a staple tool for modern web developers”, to launch sophisticated malware campaigns aimed at data theft and system compromise. Microsoft Defender Experts (DEX) have reported a spike in such attacks since October 2024, especially focusing on malvertising and deceptive software installers. Node.js: From Developer Darling to Hacker’s Tool Node.js…
-
KB5002623 behebt Patchday-Fehler – Notfall-Update für Microsoft Office behebt kritischen Fehler
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/microsoft-office-2016-update-kb5002623-behebt-absturzprobleme-a-9084d0054e8510dae99ea82a1f954257/
-
Nerdio Manager for MSP 6.0 Brings Unified Microsoft 365 and AVD Management to the Forefront
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/news/nerdio-manager-for-msp-6-0-brings-unified-microsoft-365-and-avd-management-to-the-forefront
-
Microsoft adds AI to Purview for faster breach response
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/brief/microsoft-adds-ai-to-purview-for-faster-breach-response
-
Blocking Device Code Flow in Microsoft Entra ID
by
in SecurityNewsWhat is Device Code Flow Device code flow is an authentication mechanism typically used on devices with limited input capabilities”, like smart TVs, IoT appliances, or CLI-based tools. A user initiates login on the device, which displays a code. The user then opens a browser on a separate device and enters the code at microsoft.com/devicelogin.…
-
Microsoft blocks ActiveX by default in Microsoft 365, Office 2024
by
in SecurityNewsMicrosoft announced it will begin disabling all ActiveX controls in Windows versions of Microsoft 365 and Office 2024 applications later this month. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-blocks-activex-by-default-in-microsoft-365-office-2024/
-
Exchange 2016 and 2019 reach end of support in six months
by
in SecurityNews
Tags: microsoftMicrosoft warned that Exchange 2016 and Exchange 2019 will reach the end of support six months from now, on October 14. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-exchange-2016-and-2019-reach-end-of-support-in-six-months/
-
Microsoft warns of CPU spikes when typing in classic Outlook
by
in SecurityNewsMicrosoft warned Windows users of increased CPU usage when typing while using recent versions of the classic Outlook email client. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-warns-of-cpu-spikes-when-typing-in-classic-outlook/
-
Microsoft Teams File Sharing Unavailable Due to Unexpected Outage
by
in SecurityNewsMicrosoft Teams users across the globe are experiencing significant disruptions in file-sharing capabilities due to an unexpected outage, impacting workplace communication and collaboration. A wave of reports began surfacing from organizations and individuals unable to share files within Microsoft Teams”, the popular collaboration platform used by businesses, schools, and organizations worldwide. Users attempting to send…
-
ActiveX blocked by default in Microsoft 365 because remote code execution is bad, OK?
by
in SecurityNewsStopping users shooting themselves in the foot with last century’s tech First seen on theregister.com Jump to article: www.theregister.com/2025/04/15/activex_microsoft_365/
-
Paragon Hard Disk Manager Flaw Enables Privilege Escalation and DoS Attacks
by
in SecurityNews
Tags: access, attack, cyber, cybersecurity, dos, exploit, flaw, microsoft, ransomware, service, software, vulnerabilityParagon Software’s widely used Hard Disk Manager (HDM) product line has been found to contain five severe vulnerabilities in its kernel-level driver, BioNTdrv.sys, enabling attackers to escalate privileges to SYSTEM-level access or trigger denial-of-service (DoS) attacks. The flaws, now patched, were actively exploited in ransomware campaigns leveraging Microsoft-signed drivers, according to cybersecurity researchers. Overview of the Vulnerabilities The…
-
CISO Conversations: Maarten Van Horenbeeck, SVP Chief Security officer at Adobe
by
in SecurityNewsVan Horenbeeck’s career spans some of the biggest companies in tech: Verizon, Microsoft, Google, Amazon, Zendesk, and now SVP and CSO at Adobe. The post CISO Conversations: Maarten Van Horenbeeck, SVP & Chief Security officer at Adobe appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/ciso-conversations-maarten-van-horenbeeck-svp-chief-security-officer-at-adobe/
-
Windows Server 2025: Domain-Controller sind nach Neustart nicht mehr erreichbar
by
in SecurityNewsWindows Server 2025 leidet offenbar unter einem Konnektivitätsproblem. Laut Microsoft wird bei Domain-Controllern das falsche Firewall-Profil geladen. First seen on golem.de Jump to article: www.golem.de/news/windows-server-2025-domain-controller-sind-nach-neustart-nicht-mehr-erreichbar-2504-195369.html